PAN 5060
Outisde untrusted interface 5.5.1.77
Inside trusted interface 10.10.1.1
Wifi guest network inside 10.10.5.0/24
Most Global Protect corporate users go to ourvpn.foo.com 5.5.1.77.
WiFi users normally PAT to the Internet using that same interface
...
Hi,
We just several FWs in which we see any content package as "unknown" and we can not delete it???
Why this package is unknown and why it can not be deleted??? Here an example:
We have to block traffic generated from most Apple services, such as update requests, Apple Store downloads, mainly from the services in background.
We need all the steps to do it.
Thanks in advance.
Hi,
we have done some Vulnerability assessment on firewall with PAN-OS version 7.1.8 version. And found below vulnerability for which we are not able to find CVE or solution. Help me to find a solution for below:
Vulnerability : CGI Generic SQL Injec
...
Trying to use
set template TemplateName config shared certificate "CertName" public-key "xxx
"
I am getting it from a show template . but the string value is multiline so when i try and copy and paste. it fails on the second line
How do I work around t
...
Can someone point to the documentation on the things panorama will push and what you need to do on the local devices that panorama wont push? I have noticed a few things today like interface states, I set my interfaces from down to auto in Panorama a
...
Hi,
I'm having several problems with suddenly disconnections between users and xenapp citrix through PAN. Looking some information about that I think that is related about ASIC treatment of traffic... Is possible turn offload traffic only for citrix t...
I'm trying to figure out the total application time of some specific applications. For example, for the last 7 days I'd like to know for a particular subnet how much time was spent on YouTube. Is this possible? So I'm looking for something to tell me
...
kind of stuck looking for the place to set up accounting to send to the tacacs server, anyone else seen this or just used panorama for the logging?
Hi,
According to wf-500 wildfire appliance document the machine supports 7000 files per day.
In my organization the machine actually scan more then 15,000 per day so how this is really work?
I see that the memory is always around 75% but the Cpu is only...
Hi,
Last week we had a problem with TRAPS. We have ESM in the cloud, and we have traps agents in diferente sites. One of these sites had a problem with the internet, so traps could not contact the cloud. The case is that we have executables that trap
...
Hi!
I've a scenario where the authentication methods needs to be different for some users connecting via Global Protect. Basically two options needs to be supported:
hi,
i have setup a site to site vpn between 2 palos . the tunnel is established but when one user from his PC ping continuously to a pc or a server on the other end, it looses 1 icmp after sending 10 or 15 icmps.
My concern is how do check the credibi
...
Is there a way to re-import a config from a device already managed? My device template and firewall local configs are all out of sync and i cant even figure out how to delete some stuff in panorama or local device, I have a template created and tried
...
Hi,
We have a PA in 8.0.3, we have blocked adult URL category in this FW. WE are expecting that users can see adult webs.
For example: If a user tries to go to www.beeg.com, the main web is showed properly, but when user clicks on a video or any part
...
SteveCantwell
on:
'Persistency - 779040014' alerts detected by XDR Agent , 'Persistency - 779040014' alerts prevented by XDR Agent
TomYoung
on:
Data Filtering License
BPry
on:
Palo blocks on login step
SteveCantwell
on:
problem to folder pancfg
